[16150] in bugtraq
machine independent protection from stack-smashing attack
daemon@ATHENA.MIT.EDU (Hiroaki Etoh)
Wed Aug 9 15:18:15 2000
Mime-Version: 1.0
Content-type: text/plain; charset=us-ascii
Message-ID: <49256936.00370B0C.00@d22mta13.yamato.ibm.com>
Date: Wed, 9 Aug 2000 18:59:49 +0900
Reply-To: Hiroaki Etoh <ETOH@JP.IBM.COM>
From: Hiroaki Etoh <ETOH@JP.IBM.COM>
To: BUGTRAQ@SECURITYFOCUS.COM
I have been investigating a machine-independent change to GCC that
would generate code to protect applications from stack-smashing attacks.
The main characteristics are low performance overhead of the protection
code, protecting against different varieties of stack-smashing attacks,
and supporting various processors. A research report is ready on
the web (http://www.trl.ibm.co.jp/projects/security/propolice).
I would like some feedback whether it is worth pursuing getting it
assigned to the FSF for inclusion in GCC.
---
Hiroaki Etoh, Tokyo Research Laboratory, IBM Japan
